This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft File: 1kBlpUFdmUI5AUXyJHkB2TZFidc.mft (raw, json) Hash identifier: 4p9FyFZlvIlYNDBCvCS5P9rPU2qBb/LfGBDpny3e3uc= Subject key identifier: 5D:55:F2:9E:24:04:B4:D4:C7:22:9C:80:53:93:0D:BF:38:4B:1F:0C Authority key identifier: D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7 Certificate issuer: /CN=d64065a5415d9942390145f2247901d9364589d7 Certificate serial: 0198E9E79C9F6CA9192B3972D4464A00B334 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft Manifest number: 0B28 Signing time: Wed 27 Aug 2025 05:02:06 +0000 Manifest this update: Wed 27 Aug 2025 05:02:06 +0000 Manifest next update: Thu 28 Aug 2025 05:02:06 +0000 Files and hashes: 1: 1kBlpUFdmUI5AUXyJHkB2TZFidc.crl (hash: q0QdVkaRMEpDaJASGCCZzH0Pgv/7Hrj7kXCclkNJEkQ=) 2: 6rPFWOjVfpn28_M8t16r5KAzkLA.roa (hash: wER3Gq8nSGCzekLgZFtgVD/F8/GF6EezM87XvHZecI4=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:e9:e7:9c:9f:6c:a9:19:2b:39:72:d4:46:4a:00:b3:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d64065a5415d9942390145f2247901d9364589d7 Validity Not Before: Aug 27 05:02:06 2025 GMT Not After : Aug 28 05:02:06 2025 GMT Subject: CN=5d55f29e2404b4d4c7229c8053930dbf384b1f0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2f:3e:2e:22:99:b1:f5:c3:91:9c:5f:4c:83: 76:69:2a:5d:8e:d5:cc:ff:18:b1:eb:7e:6f:58:ed: a5:a9:46:18:54:85:99:bf:07:02:df:79:df:d4:43: ca:88:32:67:6d:df:b7:98:5c:9f:e6:9e:8f:35:19: 29:d2:6b:82:e6:fc:e0:52:b2:be:ca:60:d5:d0:3a: 39:d5:39:70:35:e4:3f:bd:5e:25:6f:d1:c5:25:59: 66:d3:da:7b:1c:e0:ac:12:7d:32:72:b1:30:80:a2: f6:52:fb:5c:08:4e:76:34:7f:d1:bd:1b:cf:cc:bc: 27:46:d4:be:e1:e5:ac:b7:6e:29:77:48:9e:42:39: 99:08:5a:d9:24:11:ef:19:30:16:ee:61:33:81:03: d9:84:fb:e3:e6:3c:0c:fe:18:9c:fd:af:e7:ac:2a: 58:2b:af:05:e4:04:a0:bc:ac:13:4d:34:dd:6e:cb: 6c:27:a4:eb:77:77:0a:27:ab:56:00:f6:30:47:39: d0:9a:ba:d2:b2:a8:c2:a2:cd:f6:aa:95:82:6f:f7: e1:d4:6e:1d:4c:26:fe:83:03:e8:fa:d2:a0:5c:68: 3b:ad:ac:ac:ac:02:c7:89:ae:91:e1:5b:dd:ce:fe: c3:5a:c1:94:f5:7d:d1:5c:a1:8d:23:b0:ea:43:f6: 79:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:55:F2:9E:24:04:B4:D4:C7:22:9C:80:53:93:0D:BF:38:4B:1F:0C X509v3 Authority Key Identifier: keyid:D6:40:65:A5:41:5D:99:42:39:01:45:F2:24:79:01:D9:36:45:89:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kBlpUFdmUI5AUXyJHkB2TZFidc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/9a2d86-0f5e-446b-ad29-f8af2d0ae28c/1/1kBlpUFdmUI5AUXyJHkB2TZFidc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:c7:fa:76:1c:21:3c:ba:89:18:e5:2d:3b:f7:f1:8d:f2:42: 3a:2c:d6:3c:77:1b:4e:b2:6c:23:00:b3:82:67:0d:17:91:51: ac:51:35:ec:05:a8:3f:d7:03:4d:0c:9c:3b:f0:23:c6:cc:12: 22:e3:c5:6a:55:f6:f5:e6:87:3a:b9:51:d2:27:59:0a:43:3e: ae:57:fa:7e:23:f5:00:eb:52:6e:1d:c1:04:71:1f:de:21:55: ac:f0:a3:7a:be:fb:51:e1:12:9a:d9:bc:94:a0:f8:b5:da:98: e5:26:ea:f4:df:63:fa:ab:35:a5:82:6b:83:de:52:a3:26:79: ce:47:87:01:92:e9:b3:00:99:9e:ee:4c:18:01:f0:29:dd:c6: 5f:9d:c5:91:85:36:71:f3:91:7a:72:7c:a4:42:05:d9:86:17: 0b:1b:8c:66:62:91:ba:54:3a:2e:4c:fd:e0:52:80:cf:a7:b3: de:6b:dc:d1:8b:00:5a:51:73:54:50:da:6c:f0:8c:be:be:c5: 04:f8:6e:a3:46:8d:0b:b3:8e:68:6e:d2:29:1d:35:25:b1:ce: e9:b2:55:71:3a:d2:53:52:50:b7:f9:d6:c5:84:b6:d7:07:e5: 07:e9:64:f1:ed:ff:f5:e0:0f:18:ba:71:d6:4d:e0:34:c7:97: bd:a8:38:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjp55yfbKkZKzly1EZKALM0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2NDA2NWE1NDE1ZDk5NDIzOTAxNDVmMjI0NzkwMWQ5MzY0 NTg5ZDcwHhcNMjUwODI3MDUwMjA2WhcNMjUwODI4MDUwMjA2WjAzMTEwLwYDVQQD Eyg1ZDU1ZjI5ZTI0MDRiNGQ0YzcyMjljODA1MzkzMGRiZjM4NGIxZjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAni8+LiKZsfXDkZxfTIN2aSpdjtXM /xix635vWO2lqUYYVIWZvwcC33nf1EPKiDJnbd+3mFyf5p6PNRkp0muC5vzgUrK+ ymDV0Do51TlwNeQ/vV4lb9HFJVlm09p7HOCsEn0ycrEwgKL2UvtcCE52NH/RvRvP zLwnRtS+4eWst24pd0ieQjmZCFrZJBHvGTAW7mEzgQPZhPvj5jwM/hic/a/nrCpY K68F5ASgvKwTTTTdbstsJ6Trd3cKJ6tWAPYwRznQmrrSsqjCos32qpWCb/fh1G4d TCb+gwPo+tKgXGg7raysrALHia6R4Vvdzv7DWsGU9X3RXKGNI7DqQ/Z5qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF1V8p4kBLTUxyKcgFOTDb84Sx8MMB8GA1UdIwQY MBaAFNZAZaVBXZlCOQFF8iR5Adk2RYnXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWtCbHBVRmRtVUk1QVVYeUpIa0IyVFpGaWRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS85YTJkODYtMGY1ZS00NDZiLWFkMjkt ZjhhZjJkMGFlMjhjLzEvMWtCbHBVRmRtVUk1QVVYeUpIa0IyVFpGaWRjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS85YTJkODYtMGY1ZS00NDZiLWFkMjktZjhhZjJkMGFlMjhj LzEvMWtCbHBVRmRtVUk1QVVYeUpIa0IyVFpGaWRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADcf6dhwh PLqJGOUtO/fxjfJCOizWPHcbTrJsIwCzgmcNF5FRrFE17AWoP9cDTQycO/AjxswS IuPFalX29eaHOrlR0idZCkM+rlf6fiP1AOtSbh3BBHEf3iFVrPCjer77UeESmtm8 lKD4tdqY5Sbq9N9j+qs1pYJrg95SoyZ5zkeHAZLpswCZnu5MGAHwKd3GX53FkYU2 cfORenJ8pEIF2YYXCxuMZmKRulQ6Lkz94FKAz6ez3mvc0YsAWlFzVFDabPCMvr7F BPhuo0aNC7OOaG7SKR01JbHO6bJVcTrSU1JQt/nWxYS21wflB+lk8e3/9eAPGLpx 1k3gNMeXvag46g== -----END CERTIFICATE-----Generated at Tue Dec 16 11:25:52 2025 by rpki-client